We use the Advanced Encryption Standard (AES) 256-bit encryption to store your data, providing a level of security in line with leading US financial institutions.
TrojAI strictly enforces the use of the Transport Layer Security (TLS) 1.2 encryption protocol when logging in or accessing any web application or service that deals with and/or transmits your personal information. This protocol not only ensures the secure transmission of your data but also confirms the authenticity of our site.
We host all our production applications and databases in a secure cloud environment that meets the highest standards of data security and access controls, including SOC2 compliance.
We promise never to share, sell, or transfer any of your details or the data you store using our services without your explicit consent, unless our privacy policy states otherwise. Refer to our Privacy Policy to learn more.
Your account, your control. If you request to delete your account, we assure the complete and irreversible removal of all data and documents associated with your account, including security backups, within 30 days of your request.
Users have the option to use a password or two-factor authentication. We require complex passwords stored using a non-reversible hash. Two-factor authentication grants access to users who prefer to use an email address or phone number to log in. To ensure additional security, we automatically log out users after a period of inactivity.
At TrojAI we never store credit card information, and we do not collect Social Security/Insurance numbers. We avoid collecting HIPAA-scoped data whenever possible.
TrojAI is in the process of completing a Type 2 Service Organization Control 2 (SOC 2 Type 2) audit, as confirmed by an independent CPA report and certification. We are on track to receive our SOC 2 Type 2 certification in the first quarter of 2024, demonstrating our commitment to rigorous information security policies and procedures.
For comprehensive security management, we work with Kobalt to ensure round-the-clock security monitoring and incident response, thereby maintaining the safety and integrity of your data.
In the event of a system outage, we have implemented measures to maintain data security and robust disaster recovery and business continuity plans. If you identify a security issue affecting TrojAI or our users, we encourage you to report it to us at security@troj.ai. We welcome any other security concerns as well - your safety is our priority.
